Implementing and Maintaining PKI to Support Message Security in Exchange 2003


Topic Last Modified: 2005-05-19

This section provides information to help the public key infrastructure (PKI) administrator integrate PKI with e-mail clients in a Secure/Multipurpose Internet Mail Extensions (S/MIME)-based message security system that uses Microsoft® Exchange Server 2003. This section supplements the PKI documentation deployed in the organization. In addition, the PKI administrator can obtain supplemental information from the e-mail client administrator regarding S/MIME-based message security systems and from the Exchange administrator regarding Exchange Server 2003 integration.

Because there are many options available regarding PKIs and e-mail clients, you should read only the sections of this section relevant to your specific needs. This section includes the following:

  • Supporting Microsoft Office Outlook® 2003 in your PKI.

  • Supporting Outlook Web Access with the S/MIME control in your PKI.

    This section only discusses Outlook Web Access when using the S/MIME control with digital certificate handling. For additional information about Outlook Web Access and the S/MIME control related to non-PKI elements, see Implementing and Maintaining the Outlook Web Access S/MIME Control.
  • General PKI planning considerations.

  • Migrating from previous versions of Exchange Key Management Server.

  • Microsoft Windows Server™ 2003 certification authority (CA).

  • Third-party CAs.

This section presumes that the PKI administrator has a thorough understanding of cryptography and PKIs. For more information about these subjects, see your PKI documentation. In addition, PKI administrators should also read Understanding How Exchange 2003 Supports Message Security, or have an equivalent knowledge of the concepts of S/MIME and the components in an Exchange 2003-based S/MIME system.

Other sections in this guide cover the following topics: